Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-04 | CVE-2023-38467 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In urild service, there is a possible out of bounds write due to a missing bounds check. | 4.4 |
| 2023-09-04 | CVE-2023-38468 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In urild service, there is a possible out of bounds write due to a missing bounds check. | 4.4 |
| 2023-09-04 | CVE-2023-38553 | Out-of-bounds Write vulnerability in Google Android 11.0 In gnss service, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2023-09-04 | CVE-2023-38554 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In wcn bsp driver, there is a possible out of bounds write due to a missing bounds check.This could lead to local denial of service with no additional execution privileges | 5.5 |
| 2023-08-14 | CVE-2023-21230 | Improper Check for Unusual or Exceptional Conditions vulnerability in Google Android 11.0/13.0 In onAccessPointChanged of AccessPointPreference.java, there is a possible way for unprivileged apps to receive a broadcast about WiFi access point change and its BSSID or SSID due to a precondition check failure. | 5.5 |
| 2023-08-14 | CVE-2023-21234 | Missing Authorization vulnerability in Google Android 11.0/13.0 In launchConfirmationActivity of ChooseLockSettingsHelper.java, there is a possible way to enable developer options without the lockscreen PIN due to a missing permission check. | 5.5 |
| 2023-08-14 | CVE-2023-21271 | Out-of-bounds Read vulnerability in Google Android 12.0/12.1/13.0 In parseInputs of ShimPreparedModel.cpp, there is a possible out of bounds read due to improper input validation. | 5.5 |
| 2023-08-14 | CVE-2023-21274 | Out-of-bounds Read vulnerability in Google Android 12.0/12.1/13.0 In convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2023-08-14 | CVE-2023-21276 | Use of Uninitialized Resource vulnerability in Google Android 12.0/12.1/13.0 In writeToParcel of CursorWindow.cpp, there is a possible information disclosure due to uninitialized data. | 5.5 |
| 2023-08-14 | CVE-2023-21277 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In visitUris of RemoteViews.java, there is a possible way to reveal images across users due to a missing permission check. | 5.5 |